Collaboration system and method among heterogeneous nomadic and mobile communication networks using grid services

ABSTRACT

The present invention relates to a collaboration system and method among heterogeneous nomadic/mobile communication networks using a grid service. By using a system in which GSI (Grid Service Infrastructure) is overlaid on heterogeneous nomadic/mobile communication networks, access to resources that are accessible with different interfaces can be made with a single standard interface. Further, a vertical hand-off among heterogeneous networks and access to location information can be easily performed. In addition, mutual operationality among networks can be improved and an efficient collaboration environment can be constructed.

TECHNICAL FIELD

The present invention relates to a collaboration system and method, andin particular, to a collaboration system and method using grid services.

BACKGROUND ART

Generally, grid services are provided based on grid technologies and Webservice technologies. A grid service is predominantly provided for astructure that shares resources distributed in a fixed network based onthe grid computing technology, and a service execution environment.Recently, as the standard interface system that gives intelligence to agrid and is provided for various kinds of apparatuses, which areoperated under different environments, Web and semantic technologies arebeing introduced. Further, associated scenarios, application systems,and toolkits are being researched and developed such that the grid canbe used as a computing grid, a data grid, or an access grid according tothe use cases.

In WSRF (Web Service Resource Framework) and OGSA (Open Grid ServiceArchitecture) that have recently been issued, the grid service isdefined as a distributed computing and data processing infrastructurethat allows geographically and structurally distributed heterogeneousresources to be efficiently used using a stateful Web service. Further,access techniques that are usable in a mobile environment are beingresearched and developed.

In a grid system, VOs (Virtual Organizations) include individuals,groups, and institutes that temporarily or dynamically construct anintegrated environment to share resources for a common goal. However,the grid systems and applications construct the virtual organizations,which are usable in the fixed network, provide required services, andsupport the life cycle during the execution. A method that uses mobileresources as the virtual organizations has not been suggested.

The grid service is provided for resources connected to the fixednetwork, and is in development to be used in a collaborative environmentfor applications to various fields, such as IT (Information Technology)information processing, NT (Nano Technology), and BT (Bio Technology),under different environments. As a representative example, GlobusAlliance has developed application services, such as GRAM (Grid ResourceAllocation and Management protocol), MDS (Monitoring and DiscoverySystem), GSI (Grid Service Infrastructure), GASS (Grid Access toSecondary Storage), and GridFTP, base on GT (Globus Toolkit).

Further, for the HPC (High-Performance Computing) community, variouskinds of tools and platforms, such as WebCom/WebCom-G, Grid ServiceBroker, Grid Portal SW, Grid Packaging Toolkit, MPICH-G2,Condor/Condor-G, HPC4U Middleware, Gridway metascheduler R-GMA(Relational Grid Monitoring Architecture), and NWS (Network WeatherService), have been published. As the commercial grid systems, AccessGrid, gLite, IceGrid, NorduGrid, Open Science Grid, OurGrid, Sun Grid,and GRIA (Grid Resources for Industrial Applications) are provided. Thenew release of platforms such as WSRF.NET and the like has also beenprovided. The standards and APIs used in the grid are stated in WSRF,CORBA, OGSA, OGSi, and Distributed Resource Management Application API.Further, technologies for supporting the Web service have beenincorporated so as to develop the technologies, such as Knowledge-Grid,Semantic-Grid, and the like.

At present, the major issue of the grid service is to use the mobileresources as grid resources while accepting wireless and mobilecharacteristics and requirements. To this end, a case where a user whoowns a mobile phone uses the grid service through a public wireless LAN(WLAN) for a specific application, such as e-Health, is being studied.

The mobile grid is highly required for the mobility control. It islogically/functionally seen that a single domain (or network/serviceprovider) can be made in connection with an existing mobilecommunication infrastructure. However, an architecture that can providemobility control and location information under various heterogeneousnomadic/mobile communication environments is being studied as a problemto be solved for the development of the technologies.

In another technical field, for example in a nomadic/mobilecommunication field, 2G/3G cellular, WLAN (Wireless LAN), WiBro/WiMAX(Wireless Broadband/World Interoperability for Microwave Access),telemetics, and a location-based service can be exemplified. At present,various heterogeneous systems and services are mainly provided throughseparate operator domains. Further, a horizontal hand-off servicebetween operators of the same technical standards is provided accordingto technical characteristics of wireless transmission and serviceagreements.

The nomadic/mobile communication systems and services have beendeveloped to 3.5G and 4G systems so as to support a fast wirelesstransmission technology, an ALL-IP-based network service, a multimediaservice environment, and a personal communication service environment.Particularly, in the 4G mobile communication, research and developmentis being undertaken on the basis of a virtual scenario in which aservice is possible such that various wireless and mobile communicationsystems can be incorporated. Further, the search and development areprogressing to accept a pervasive communication environment.

In the 4G mobile communication, a user can receive a service in anoperator domain or a service provider domain and, even if he moves toanother domain, can select a service communication environment accordingto his service condition and continuously receive the service whilemobility is secured between the domains. This is necessary in aubiquitous environment in which various nomadic/mobile communicationsystems, various fixed networks, and broadcasting networks areincorporated.

In view of the service and application of nomadic/mobile communication,the key function is management of mobility and location information. Atpresent, an individual network operator or service provider controlsmobility and manages location information. Accordingly, forinter-networking between the domains or service collaboration betweendifferent kinds of networks, a vertical hand-off (Vertical HO) isrequired between the systems or domains using different wirelesstechnologies. To this end, the wireless access layer has a function ofsupporting the vertical hand-off. Further, in the network andapplication layer, a problem of sharing of collaboration informationbetween the domains that can secure personal mobility and servicemobility in order to maintain a continuous service session should beresolved.

Meanwhile, location information may exist in various forms by mechanismsused in the individual nomadic/mobile communication networks. Apersonalized application or a custom service application requiresinformation that can dynamically use location information of neighboringresources according to environments of mobile resources. That is, it isnecessary to manage information that can be recognized according to achange in context. To this end, additional concentrated management nodesand processes are needed. Particularly, an ability to support sessionmobility is needed.

In the mobile communication field, a tendency in the application of thegrid is still in a conceptual and experimental phase.

DISCLOSURE OF INVENTION Technical Problem

The introduction of the grid into the mobile communication has beenattempted as follows. First, the mobile communication terminals operateas an interface with respect to the grid, to thereby receive a gridapplication service. Second, the mobile communication terminals areshared as the grid resources.

The latter case has suggested that the general concept of a mobilecommunication terminal can be used as the grid resource, and has laidemphasis on portions required for operation. In this case, however, howto apply the grid computing technology to which application is notdefined clearly. Specifically, there has been no suggestion of a methodthat uses a base station or resources in the nomadic/mobilecommunication systems, for example resources such as a base station andthe like, other than the mobile terminal, as the grid resources.

Further, a technology based on an interface with a grid network hassuggested a gateway function between a user of a mobile communicationterminal and a grid system and middleware based on a replication method.Although the concept of the application of the grid to the mobilecommunication has been described, there is no detailed description onhow to solve a problem related to mobility and location information.Further, there is no specific suggestion on how to perform a negotiationamong the heterogeneous systems or domains.

The above information disclosed in this Background section is only forenhancement of understanding of the background of the invention andtherefore it may contain information that does not form the prior artthat is already known in this country to a person of ordinary skill inthe art.

Technical Solution

The present invention has been made in an effort to provide acollaboration system among heterogeneous networks using a grid service,and a method of providing a service.

An exemplary embodiment of the present invention provides an apparatusfor providing a collaboration service that applies a grid service to anode so as to provide a collaboration service among heterogeneouscommunication networks, each having a plurality of domains.

The apparatus includes a global collaboration management unit thatprovides at least one of authentication, authorization, mobilitycontrol, charging, and management services to grid participants and gridservices; a GSI (Grid Service Infrastructure) unit that supports acommon interface among a plurality of resources having differentinterfaces using grid service technologies, and supports a service forallowing the node to be used as a resource; and a grid interface unitthat controls the application of the grid service to the node inconnection with the GSI unit and the global collaboration managementunit.

Another embodiment of the present invention provides a method ofproviding a service to a terminal, which moves from a first domain to asecond domain, through a grid service in a collaboration system having aplurality of domains.

The method includes receiving, from the second domain, a request toexecute a workflow for a service to be provided to the terminal,performing authentication on the terminal, and collecting user agentinformation and operative virtual organization information; requesting anode, which is registered as a grid resource, to execute the service onthe basis of the user agent information and the operative virtualorganization information; and providing, to the terminal, the servicereceived from the node.

Still another embodiment of the present invention provides a method ofproviding a service to a terminal, which moves from a first domain to asecond domain, through a grid service in a collaboration system having aplurality of domains.

The method includes receiving a request to execute a workflow from thefirst domain where the terminal is located, if authentication on theterminal is completed; requesting user agent information and operativevirtual organization information of the terminal, if the user agentinformation and operative virtual organization information are received;performing authorization on an operative virtual organization, andconstructing the workflow on the basis of the user agent information, ifan interface corresponding to a user agent exists in an interface unit;requesting, through the corresponding interface, a service to beprovided to the terminal; and receiving the service from thecorresponding interface and transmitting the received service to theterminal.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a diagram illustrating the concept of providing a virtualorganization service to a plurality of communication networks in acollaboration system according to an exemplary embodiment of the presentinvention.

FIG. 2 is a diagram showing the configuration of a GMLA server accordingto an exemplary embodiment of the present invention.

FIG. 3 is a flowchart illustrating a GMLA operation according to anexemplary embodiment of the present invention.

BEST MODE FOR CARRYING OUT THE INVENTION

In the following detailed description, only certain exemplaryembodiments of the present invention have been shown and described,simply by way of illustration. As those skilled in the art wouldrealize, the described embodiments may be modified in various differentways, all without departing from the spirit or scope of the presentinvention. Accordingly, the drawings and description are to be regardedas illustrative in nature and not restrictive. Like reference numeralsdesignate like elements throughout the specification.

In addition, unless explicitly described to the contrary, the word“comprise” and variations such as “comprises” or “comprising” will beunderstood to imply the inclusion of stated elements but not theexclusion of any other elements.

FIG. 1 is a diagram illustrating the concept of providing a virtualorganization service to a plurality of communication networks in acollaboration system according to an exemplary embodiment of the presentinvention.

A collaboration system according to an exemplary embodiment of thepresent invention expands a grid service paradigm to various types ofnomadic/mobile communication networks. The system that enables theexpansion supports terminals, which receive a mobile service, inconnection with heterogeneous nomadic/mobile communication networks(hereinafter, referred to as “HMN” (Heterogeneous nomadic/MobileNetwork)) through a collaboration application unit (not shown) and acore network (not shown).

The collaboration application unit includes a GMLA (Global Mobility andLocation Applications) layer, a GSI (Grid Service Infrastructure) layer,an MMW (Mobility MiddleWare) layer, and an ALL-IP-basedmobility/wireless communication network (AIPN: ALL Internet ProtocolNetwork) layer.

The GMLA layer is disposed at the top and manages the overall servicescenario. For example, the GMLA layer calls the GSI layer when a portionthat requires the grid service technology is executed, and calls the MMWlayer when a portion that requires the mobile service technology isexecuted.

The AIPN layer provides an environment such that other layers canexecute their own functions in the core network based on the IP(Internet Protocol). The networks of domains 10, 20, 30, 40, and 50shown in FIG. 1 are connected to each other through the AIPN layer.

The individual layers may be constructed as a server in the corenetwork, or may be distributed by nodes according to the concept of gridcomputing. In the exemplary embodiment of the present invention, a casewhere each layer is constructed as a server is described. Referring toFIG. 1, the GMLA layer is formed as a GMLA server 100 in a VO serviceregion 200.

At this time, the core network includes a network in which a servicesuch as mobility management, AAA(Authentication/Authorization/Accounting) or A4C (AAA &Auditing/Charging), LRs (Location Registers), HA (Home Agent), or SIP(Session Initiation Protocol) is executed, and the VO service regionshown in FIG. 1. However, the invention is not necessarily limitedthereto.

As shown in FIG. 1, the GMLA server 100 in the VO service region 200provides a virtual organization service to a mobile terminal inconnection with various types of domains. In FIG. 1, as the domains, a2G/2.5G cellular communication domain 10, a WLAN (Wireless Local AreaNetwork) domain 20, a Wibro (Wireless broadband Internet)/WiMAX (Worldinteroperability for Microwave Access) domain 30, a 3G/3.5G mobilecommunication domain 40, and a 4G NWA (Nomadic Wireless Access) domain50 are exemplified.

The domains 10 to 50 are separate wireless/mobile communication domains,that is, regions that are operated by a mobile network operator (MNO), amobile service provider, and a mobile virtual network operator (MVNO).The individual domains 10 to 50 serve as a home network for acorresponding subscriber and a network resource, and simultaneouslyprovide a specialized service to the collaboration system through theAIPN layer.

The GMLA server 100 shown in FIG. 1 is connected to a GSI server, an MMWserver, and an AIPN server corresponding to the GSI layer, the MMWlayer, and the AIPN layer. These servers are not shown in FIG. 1.

The GMLA server 100 controls mobility of the mobile terminal and isrelated to position-based application/services. The GMLA server 100supports an application scenario that allows the mobile terminal tocontinuously receive a service in a visited network other than thedomain of the home network according to a service level agreement (SLA),and a context-based application scenario for a pervasive communicationenvironment. To this end, the GMLA server 100 performs an AAA(Authentication, Authorization, Accounting) function on the mobileterminal when the domain receives a service request from anotherresource.

Further, the GMLA server 100 updates binding information or calls gridservice execution to acquire or update AAA information and bindinginformation, and transmits the result to a resource that requests thecorresponding service. Here, the binding information is information thatis used to support better communication while the mobile terminal ismoving when the grid service is executed. The binding informationincludes information regarding the current position of the mobileterminal.

The individual domains 10 to 50 shown in FIG. 1 serve as the homenetwork for each subscriber and network resource in an inter-HMNcollaboration network and simultaneously support a specialized networkservice for the mobile terminal through the AIPN server. Further, theindividual domains 10 to 50 include a node (for example a mobilitymanagement node) that operates in the MMW server. Accordingly, it ispossible to provide a local subscriber authentication service, anauthorization service, or a mobility control service to the mobileterminal.

For a situation in which a user of another domain visits the network ofthe domain, it is possible to consider two cases, that is, a case whereboth domains have the same communication mechanism between theauthentication servers (for example an AAA server) and a case where theyhave different communication mechanisms. First, a case where bothdomains have the same communication mechanism between the authenticationservers will be described. Here, a subscriber accesses the visitednetwork. At this time, when a local AAA server located in the visitednetwork does not perform authentication on the subscriber, the local AAAserver requests subscriber information and authentication andauthorization information from the AAA server of the home network towhich the subscriber belongs. Subsequently, the local AAA serverreceives a corresponding response. At this time, if the subscriber is asubscriber of a domain according to the agreement, the local AAA serverpermits access of the subscriber to the network, and stores the bindinginformation in the mobility management node or updates the bindinginformation.

Meanwhile, when the subscriber is not a subscriber of a domain accordingto the agreement, the local AAA server performs the authenticationprocedure on the subscriber in connection with the home AAA server inwhich the corresponding subscriber is registered.

Second, a case where both domains have different communicationmechanisms between the AAA servers will be described. For example, whenthe AAA server of the home network to which the subscriber belongs is aRADIUS server or an authentication center server, and the AAA server ofthe visited network is a diameter server, it may be difficult for thetwo AAA servers to directly exchange information. In this case, theauthentication procedure on the subscriber is performed using a gridservice through the GMLA server, which will be described below withreference to FIG. 2.

In both cases described above, mobility binding information isstored/updated in a mobility management registry of the GMLA server 100,and is also stored/updated in the mobility management server of thecorresponding domain. Accordingly, consistency of information issecured. Then, in order to perform authentication on a specificapplication or to acquire authorization and mobility information, acorresponding procedure can be fully performed through the GMLA server100.

The VO service region 200 represents a mobile grid virtual organizationservice, and the GMLA server 100 is located at the center of the VOservice region 200. A logic sequence, which is required for mobilitycontrol of a subscriber that visits another domain or a subscriber thatperforms a vertical hand-off, is executed through the GMLA server 100.In addition, when the resources (represented by a symbol ‘R’ in FIG. 1)request location information, the GMLA server 100 acquires thecorresponding location information and transmits the acquired locationinformation in response to the requests.

To this end, the GMLA server 100 includes an A4C (Authentication,Authorization, Accounting, Auditing, and Charging) function, a mobilitymanagement function, and a registry for storing and updating associatedinformation. Here, the registry refers to a database shown in FIG. 2,which will be described below.

The GSI server generates and operates a base virtual organization (BVO)for various types of domains that participate in the collaborationsystem, and supports membership management, policy management, andparticipant registry functions.

According to the request of the application, the base virtualorganization generates an operative virtual organization (OpVO)corresponding to the application. For example, when mobility informationis requested, Mobility_Info_OpVO (Mobility Information Operative VO) isgenerated. When subscriber authentication or application serviceauthentication information is requested, A4C_OpVO (A4C Operative VO) isgenerated. When location information or context information isrequested, Location_OpVO (Location Operative VO) is generated. Then, thecorresponding workflow is executed. The OpVO is generated each time theservice is requested. In addition, the user agent and the service agentare generated and continuously executed until the lifetime is expired,that is, until the requested workflow is completed.

In the exemplary embodiment of the present invention, the base virtualorganization and the operative virtual organization can operate with anoverlay network, in which a Web service is possible. Here, the overlaynetwork means a logical network that is constructed according to thepurpose of the service on the basis of an existing physical network. Forexample, when the Internet is a network that realizes services, such asthe Web and the like, on a physical network having a plurality ofrouters, the Internet can be regarded as an overlay network.Accordingly, if the HMN represents heterogeneous networks having varioustypes of domains, the GSI server does not have a separate physicalnetwork but has a structure that is overlaid on the HMN infrastructureto realize the grid service over the existing HMN.

In the base virtual organization and the operative virtual organization,it is assumed that various heterogeneous nomadic/mobile communicationdomains participate therein. Therefore, in order to easily performidentifier and context management for the participating domains and thevirtual organization resource, a hub and spoke topology may beconstructed. Further, when direct communication between mobilecommunication resources is requested, the BVO and the OpVO can support aP2P (peer-to-peer) topology.

The functional configuration of the GMLA server that supports theabove-described functions will be described with reference to FIG. 2.

FIG. 2 is a diagram showing the configuration of a GMLA server accordingto an exemplary embodiment of the present invention.

As shown in FIG. 2, the GMLA server 100 includes an A4C interface unit110, a mobility management interface unit 120, a grid interface unit130, a global collaboration management unit 140, a GSI (Grid ServiceInfrastructure) unit 150, and a storage unit 160. The GMLA server 100provides a grid service to a terminal that is in connection with a GSIserver (not shown), an MMW server (not shown), and an AIPN server (notshown).

A GSI server basically provides grid middleware, a GrSDS (Grid ServiceDiscovery Service), and a grid application support service. Further, theGSI server supports the management of the base virtual organization andthe operative virtual organization related to the GMLA server 100, andthe execution of the workflow. In addition, the GSI server supports theOGSA (Open Grid Service Architecture) and WSRF (Web Services ResourceFramework) standards. According to the exemplary embodiment of thepresent invention, the GSI server supports the management of theparticipating domains and registry of membership, generation of theworkflow, execution of the grid service, SLA negotiation, and virtualorganization operation.

The MMW server is a mobile communication service platform, and executesa wireless Internet service, an IMS (IP Multimedia Subsystem), A4C, SIP(Service Initiation Protocol), HA (Home Agent), an HSS (Home SubscriberSystem), an HLR (Home Location Register), context management, QoS,security functions, and authentication/authorization on the network andgrid application, session management, and location informationacquisition services.

The AIPN server supports access to various types of wireless accessnetworks while centering around an IP core network. In addition, theAIPN server accepts IP mobility, particularly IPv6 mobility, andincludes a network management function. The AIPN server supports roamingand hand-off of the mobile network and QoS management with a mobilitymanagement function that manages movement and location informationpeculiar to each mobile communication/wireless network.

The A4C interface unit 110 is needed to allow the GMLA server 100 toperform an authentication function on individual domains. Generally, aRADIUS (Remote Authentication Dial In User Service), a diameter, or aSCTP (Stream Control Transmission Protocol) interface is used as the A4Cinterface unit 110. In the exemplary embodiment of the presentinvention, a diameter is used. The A4C interface unit 110 is connectedto an authentication unit (not shown) to perform authentication on amobile terminal. At this time, the authentication unit may beimplemented in the GMLA server 100 or may be implemented separately fromthe GMLA server 100. Alternatively, an authentication server havingheterogeneous protocols may be used. However, the invention is notnecessarily limited thereto.

The mobility management interface unit 120 is needed to allow the GMLAserver 100 to provide mobility information and location informationrequested by the individual domains. An interface with an authenticationclient having a different protocol is provided based on a Web serviceprotocol. Further, an IP mobility service or a diameter may be used.

The mobile communication application that requires the service sessionmanagement or the global mobility management over all networks, the SIPapplication, or the resources for executing the functions may become aclient of the A4C interface unit 110 based on the mobility and locationinformation of the mobile terminals, which are not managed by their owndomain and join another domain. At this time, under the P2Pcommunication environment or an ad hoc communication environment, themobile terminal becomes the resource.

Further, the resources can be used as the grid resources according tothe request of the GMLA server 100. At this time, the resources can beused as redirect or proxy servers according to the purposes. Here, theresources include an HA (Home Agent), an AP (Access Point), an HSS (HomeSubscriber Server) for the SIP (Session Initiation Protocol)application, a CSCF (Call Session Control Function) node, an SGSN(Serving GPRS (General Packet Radio Service) Support Node)/GGSN (GatewayGPRS Support Node) of the cellular mobile communication. Accordingly,the resources can be used as the servers.

This expands a viewpoint that only the mobile terminal is used as thegrid resource, which can be used in the HMN. The collaboration systemaccording to the exemplary embodiment of the present invention registersthe resources in the GrSDS as the services, and generates the basevirtual organization and the operative virtual organization for eachnetwork domain. Then, the service user can use the resources accordingto the grid service procedure. Therefore, various types of serversincluding the mobile terminal can be sufficiently used as the gridresource.

In the cellular mobile communication, a base station/base controlstation for executing an FA (Foreign Agent) or mobility managementfunction, an SGSN (Serving GPRS Support Node)/GGSN (Gateway GPRS SupportNode), and a PDSN (Packet Data Serving Node) are included in the GSI. Inthe WLAN or WiMAX/WiBro, AP and PAR are included in the GSI. Further,the nodes, such as HA, HSS, and MME, which manage the mobilitymanagement function of the overall network, may be included in the GSI.

In addition, for the applications based on location information, such asthe SIP application of the IMS, service discovery, context management,and telemetics, an associated positioning node, a location databasenode, and the like may be included. In the exemplary embodiment of thepresent invention, various types of workflows can be implemented by abusiness process enactor in the GMLA server 100 according to theapplications.

The grid interface unit 130 has a function of controlling the globalcollaboration management unit 140 and the GSI unit 150 described belowto provide the grid service in connection with each other.

The global collaboration management unit 140 executes a function ofconnecting a local domain and a grid domain by performing andcontrolling the function of the GMLA server 100. The globalcollaboration management unit 140 provides authentication,authorization, mobility control, charging, and management services forthe grid participants and the services. The local domain is a domainthat can provide a service through the mobile communication networknodes, and the grid domain is a domain that provides a service using thegrid service technology.

Further, the global collaboration management unit 140 is a mobile gridplatform, and includes an inter-HMN mobility and location informationapplication service layer, a grid service-based infrastructure layer, amobility middleware layer, and an ALL-IP-based mobility/wirelesscommunication network layer. Here, the individual layers may beimplemented by a signal server or an integrated server, or may beimplemented separately from each other.

Meanwhile, in addition to the applications according to the exemplaryembodiment of the present invention, the procedures for general gridcomputing application directly requested by a user having a membershipare supported on the basis of the principles and ability of the generalgrid service. That is, in order to support the general grid computingapplications, in addition to a process of accessing the GMLA server 100,management process execution procedures, such as registration of anapplication program, search of an application program, selection of amethod of outputting an application program execution result, selectionof the usable mobile resources as the grid resources and determinationof use costs, workflow execution, and charging according to the workresult, are included.

The GSI unit 150 executes the following two functions. One is a functionthat supports a common interface among the resources having differentinterfaces using the grid service technology, and the other is afunction that supports a service for allowing the mobile terminal to beused as in the general grid computing or mobile grid field.

In order to execute the first function, the GSI unit 150 supports thegrid service technology in connection with the grid interface unit 130,the GSI unit 150, the global collaboration management unit 140, and aplurality of components. Further, in order to execute the secondfunction, the GSI unit 150 has the same configuration as the generalgrid computing processing unit. Accordingly, in the exemplary embodimentof the present invention, a detailed description thereof will beomitted.

The storage unit 160 is connected to the global collaboration managementunit 140. The storage unit 160 stores information collected from aplurality of interface units 110, 120, and 130 or information that isrequired for allowing the GSI unit 150 to support the grid servicetechnology. The information stored in the storage unit 160 includes A4Cinformation on the user of the mobile terminal, updated bindinginformation, user profile, service profile, logging information,mobility/location information, and access information. However, theinvention is not necessarily limited thereto.

The global collaboration management unit 140 that executes theabove-described functions may be implemented in the GMLA server 100 ormay be provided separately from the GMLA server 100. This can be changedin various ways according to traffic capacity or development plans whenthe network is designed.

A general service execution procedure in the HMN environment having theabove-described configuration and features will be described withreference to FIG. 3.

A method of constructing and operating a mobile virtual organization(VO) according to an exemplary embodiment of the present invention maybe a method of providing mobility management, location informationacquisition, and authentication and authorization services to the mobileterminal. In order to provide the service to the mobile terminal, thesystem includes the base virtual organization and the operative virtualorganization. The base virtual organization includes subscription andregistration by domains participating in the collaboration among theheterogeneous networks, membership management, and registry operation.The operative virtual organization includes mobility management,location information acquisition, and authentication and authorization,and executes the functions in a 1:1 or 1:N manner according to therequested workflow.

FIG. 3 is a flowchart illustrating a GMLA operation according to anexemplary embodiment of the present invention.

As shown in FIG. 3, a procedure for executing a service in the HMNenvironment according to an exemplary embodiment of the presentinvention includes the steps of causing a service requester to call abase virtual organization manager, causing the base virtual organizationmanager to request authentication from the A4C server, searchingassociated user agent and operative virtual organization from aparticipant registry, requesting authorization on the correspondingoperative virtual organization through the user agent, calling aworkflow manager, calling a corresponding service agent, requesting thegrid resources to execute the service, recognizing and notifying achange of a context, and reflecting the context and executing theworkflow.

The steps will now be described in detail. The mobile terminal thatmoves from the home network (the first network) to the visited network(the second network) requests a hand-off and requests a service in orderto receive the service from the visited network even after the hand-off(Step S100). An authentication institute of the visited network, thatis, the AAA server, determines whether or not authentication can beperformed on the mobile terminal that moves from the home network (StepS101).

If the AAA server of the visited network can perform the authenticationon the mobile terminal, after the authentication on the terminal isperformed, the service is continuously provided to the mobile terminalthrough a generally known hand-off process. Meanwhile, if the AAA serverof the visited network cannot perform the authentication on the mobileterminal, the visited network determines whether or not its own AAAserver and the AAA server as the authentication institute of the homenetwork perform the authentication under the same environment (StepS102).

At this time, since the visited network provides information on its ownAAA server during the hand-off of the mobile terminal from the homenetwork, it is possible to determine whether or not the AAA serverperforms the authentication under the same environment on the basis ofthe information. If the home network and the visited network have thesame AAA server environment, the AAA server of the visited networkrequests the AAA server located in the home network of the mobileterminal to provide authentication information on the mobile terminal(Step S103). The AAA server of the visited network that receives theauthentication information of the mobile terminal from the AAA server ofthe home network performs the authentication on the mobile terminal, andthen provides the service to the mobile terminal through the hand-offprocess.

Meanwhile, when the home network and the visited network do not have thesame AAA server environment, for example when the AAA server of the homenetwork is either a RADIUS server or an authentication center server,and the AAA server of the visited network is a diameter server, it isdifficult for the two AAA servers to directly exchange information.Therefore, the AAA server of the visited network requests the executionof the workflow in a grid service manner through the GMLA server (StepS104).

The GMLA server 100 that is requested to execute the workflow calls thebase virtual organization manager in order to perform the authenticationon the mobile terminal, and requests the authentication on the mobileterminal. Then, the base virtual organization called by the GMLA server100 requests the A4C server, that is, the authentication unit, toperform authentication on a service user who owns the mobile terminalthrough the A4C interface unit 110 (Step S105). At this time, when thesystem is designed, a portion that requests the authentication may bedesigned to request the authentication from the authentication unitthrough the global collaboration management unit 140. Further, theportion may be designed to directly request the authentication throughthe A4C functions in the global collaboration management unit 140. Inthe exemplary embodiment of the present invention, a case where the GSIserver and the GMLA server are provided as separate servers will bedescribed. However, the invention is not necessarily limited thereto.

When the authentication of the service requester is completed, the GMLAserver 100 transmits the location information of the service requesterreceived during the authentication to the mobility management server ofthe visited network (Step 5107) to be stored and updated. The GMLAserver 100 also transmits the location information to themobility/location database of the storage unit 160 (Step 5108) to bestored and updated. If this process is completed, the GMLA server 100accesses the participant registry in the storage unit 160, in which theuser profile is stored, searches user agent information and operativevirtual organization information associated with the service requester(Step S109), and receives the corresponding information from the storageunit 160 (Step S110). Here, as the participant registry, the userprofile database in the storage unit may be used or a separate databaseserver may be constructed. In the exemplary embodiment of the presentinvention, a description will be given by way of the user profiledatabase in the storage unit.

It is verified whether to add the service requester as the member of thecorresponding operative virtual organization or to give permission forthe service on the basis of the user agent information related to theservice requester, which is obtained as the search result of the userprofile database by the GMLA server 100 (Step S111). Further, on thebasis of the authorization result at Step S111, the GMLA server 100constructs an associated workflow according to whether the locationinformation or the mobility information of the service requester isrequested, or whether another service is requested (Step S112), andcalls individual service agents according to the constructed workflow.

When the service agent is called, the GMLA server 100 determines whetheror not an interface corresponding to the user agent exists (Step S113).If the corresponding interface (for example a mobility managementinterface or an A4C interface) is found, the GMLA server 100 requeststhe nodes needed to provide the service to execute the service throughthe interface (Step S115). Meanwhile, when the interface correspondingto the user agent does not exist, the GMLA server 100 requests the nodesregistered as the grid resource, for example the SIP PA or thepositioning node, to execute the service through the grid interface unit130 (Step S114).

Next, the GMLA server receives the service from the nodes, which requestthe execution of the service, (Steps S116 and S117) and provides theservice to the mobile terminal (Step S118). FIG. 3 illustrates a casewhere Steps S114 to S117 are sequentially executed, but the invention isnot limited thereto.

In the exemplary embodiment of the present invention, a method that cancontinuously receive the service through the grid service during thehand-off of the mobile terminal has been described. In addition, theservice can be provided in the same manner as described above.

Here, a program for executing the functions corresponding to aconfiguration of the exemplary embodiment of the present invention or arecording medium having the program recorded thereon also falls withinthe scope of the invention.

While this invention has been described in connection with what ispresently considered to be practical exemplary embodiments, it is to beunderstood that the invention is not limited to the disclosedembodiments, but, on the contrary, is intended to cover variousmodifications and equivalent arrangements included within the spirit andscope of the appended claims.

According to the above-described exemplary embodiment, on an environmentof various heterogeneous nomadic/mobile communication networks, accessto resources that are accessible with different interfaces can beachieved with a single interface.

Further, the load on mutual operationality among complicated networkscan be reduced by integrating mobility management and authenticationmanagement on the mobile terminal, and thus an efficient collaborationenvironment can be constructed.

In addition, the resources in the heterogeneous nomadic/mobilecommunication networks as well as grid computing can be used as themobile grid resources.

1. An apparatus for providing a collaboration service that applies agrid service to a node so as to provide a collaboration service amongheterogeneous communication networks, each having a plurality ofdomains, the apparatus comprising: a global collaboration managementunit that provides at least one of authentication, authorization,mobility control, charging, and management services on grid participantsand grid services; a GSI (Grid Service Infrastructure) unit thatsupports a common interface among a plurality of resources havingdifferent interfaces using grid service technologies, and supports aservice for allowing the node to be used as a resource; and a gridinterface unit that controls the application of the grid service to thenode in connection with the GSI unit and the global collaborationmanagement unit.
 2. The apparatus of claim 1, wherein the globalcollaboration management unit provides the grid service to the node, andprovides a context-based application scenario for a pervasivecommunication environment according to a service level agreement.
 3. Theapparatus of claim 1, further comprising: a first interface unit thattransmits an authentication request for an individual domain of the nodeto the global collaboration management unit; a second interface unitthat transmits mobility information and location information requestedby the individual domain to the global collaboration management unit;and a storage unit that stores at least one of a user profile, a serviceprofile, a charging and logging profile, and a binding informationprofile required for the authentication, authorization, mobilitycontrol, charging, and mobility management.
 4. The apparatus of claim 3,wherein: the first interface unit performs an interface with an AAA(Authentication/Authorization/Accounting) or A4C (AAA &Auditing/Charging) client in each of the plurality of domains; and thesecond interface unit performs an interface with a mobility managementnode in each of the plurality of domains.
 5. The apparatus of claim 2,wherein the storage unit comprises: an authentication unit that storesat least one of authentication information, authorization information,auditing information, accounting information, and charging informationon a user of the terminal; and a binding update unit that updates andstores binding information to be used for mobility management of theterminal, the binding information being information to be used toexecute the grid service.
 6. A method of providing a service to aterminal that moves from a first domain to a second domain through agrid service in a collaboration system having a plurality of domains,the method comprising: receiving, from the second domain, a request toexecute a workflow for a service to be provided to the terminal;performing authentication on the terminal, and collecting user agentinformation and operative virtual organization information; requesting anode that is registered as a grid resource to execute the service on thebasis of the user agent information and the operative virtualorganization information; and providing, to the terminal, the servicereceived from the node, wherein the collaboration system managesoperative virtual organizations according to services with respect tothe plurality of domains.
 7. The method of claim 6, further comprisingcollecting authentication information on the terminal through the gridservice.
 8. The method of claim 6, wherein the requesting comprises:performing authorization on the basis of the collected operative virtualorganization information; and constructing the workflow on the basis ofthe authorization result.
 9. The method of claim 8, wherein, beforereceiving the request to execute the workflow, the second domain:determines of whether or not authentication can be performed on theterminal that moves from the first domain; determines whether or not anauthentication institute of the first domain is the same as anauthentication institute of the second domain if authentication is notperformed on the terminal; and requests to execute the workflow when theauthentication institute of the first domain is not the same as theauthentication institute of the second domain.
 10. The method of claim9, further comprising: when the authentication institute of the firstdomain is the same as the authentication institute of the second domain,requesting the authentication institute of the first domain to performauthentication on the mobile terminal; and receiving authenticationinformation on the mobile terminal.
 11. The method of claim 6, whereinthe node includes a resource in the first domain or the second domain.12. The method of claim 6, wherein the collecting comprises transmittinglocation information of the terminal collected during the authenticationto the second domain and updating the authentication information ifauthentication on the terminal is completed.
 13. A method of providing aservice to a terminal that moves from a first domain to a second domain,through a grid service in a collaboration system having a plurality ofdomains, the method comprising: receiving a request to execute aworkflow from the first domain where the terminal is located; ifauthentication on the terminal is completed, requesting user agentinformation and operative virtual organization information of theterminal; if the user agent information and operative virtualorganization information are received, performing authorization on anoperative virtual organization, and constructing the workflow on thebasis of the user agent information; if an interface corresponding to auser agent exists in an interface unit, requesting, through thecorresponding interface, a service to be provided to the terminal; andreceiving the service from the corresponding interface and transmittingthe received service to the terminal.
 14. The method of claim 13,wherein, if the corresponding interface does not exist in the interfaceunit, the requesting of the service comprises: requesting a node that isregistered as a grid resource to execute the service; and receiving theexecuted service through the node and transmitting the service to theterminal.